No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.

Knowledge Base

Under the N8000 user authorization, windows client accesses the cifs sharing, but there reports the password is wrong

Publication Date:  2012-11-05  |   Views:  212  |   Downloads:  0  |   Author:  c00230043  |   Document ID:  EKB1000018961


Issue Description

In the windows 2003, we have mounted the N8000 cifs sharing file system, when enter the password of the corresponding user name, there reports the “password of the user name is wrong” all the time, where the user is a local created one on the N8000.

Alarm Information


Handling Process

1. Login in the N8000 cluster via the “master” user.
2. Modify the parameter “ntlm_auth” from “no” to “yes”.
spc004> cifs set ntlm_auth yes
Global option updated. Note: Restart the CIFS server.
spc004> cifs server stop
Stopping CIFS Server....Success.
spc004> cifs server start                                                                                                                                                                                              
Starting CIFS Server....Success.
spc004> cifs show
                    Name  Value
                    ----  -----
            netbios name  spc004
               ntlm auth  yes
3. After modifying completely, login in the windows client and access successfully.

Root Cause

1. According to the windows host name “client1” and the accessed IP “”, we find a log file “log.client1” in a certain node “/var/log/samba” catalog of the N8000. We find the following segment of reporting errors from the log:
[2012/03/08 15:48:50.406204,  3] auth/auth.c:216(check_ntlm_password)  check_ntlm_password:
Checking password for unmapped user [SPC004]\[fdc1]@[ client1] with the new password interface
[2012/03/08 15:48:50.406272,  3] auth/auth.c:219(check_ntlm_password)
  check_ntlm_password:  mapped user is: [SPC004]\[fdc1]@[ client1]
[2012/03/08 15:48:50.406701,  2] ../libcli/auth/ntlm_check.c:418(ntlm_password_check)
  ntlm_password_check: NTLMv1 passwords NOT PERMITTED for user fdc1
[2012/03/08 15:48:50.406795,  2] auth/auth.c:314(check_ntlm_password)  check_ntlm_password:  Authentication for user [fdc1] -> [fdc1] FAILED with error NT_STATUS_WRONG_PASSWORD
2. Compare with the log created when we login in normally, we find it has the excrescent part “ntlm_password_check: NTLMv1 passwords NOT PERMITTED for user fdc1”.
3. Check the cifs sharing parameters:
SPC004> cifs show
                    Name  Value
                    ----  -----
            netbios name  XZGD
               ntlm auth  no
   allow trusted domains  no
                aio size  0
           idmap backend  rid:10000-1000000
               workgroup  WORKGROUP
                security  user
             Domain user 
       Domain Controller  null
         Clustering Mode  ctdb
Where the parameter “ntlm_auth” is “no”, which shows that except the nt type of windows host, all the other one can’t access it. As the current one needed to access the client system is the windows 2003, so we should modify this parameter value as to “yes”.